Home / Tag Archives: access control

Tag Archives: access control

GAO: DHS Needs to Work With Partners to Coordinate Critical infrastructure Access Control Efforts

The Government Accountability Office has urged the Department of Homeland Security to collaborate with partners to identify ways on how to coordinate access control initiatives across critical infrastructure sectors. DHS’ screening coordination office should update its goals and objectives in order to help harmonize screening and credentialing efforts across the department, …

Read More »

GAO: VA, NASA, OPM, NRC Should Address Lapses in Data System Access Controls

The Government Accountability Office has called on the Department of Veterans Affairs, NASA, Office of Personnel Management and the Nuclear Regulatory Commission to address weaknesses in their access controls for information systems that store sensitive data. GAO said in a report released Tuesday the four federal agencies should also fully implement the components …

Read More »

Vormetric’s Wayne Lewandowski: Federal Govt’s Cyber Strategy Should Prioritize Encryption, Access Controls

Wayne Lewandowski, vice president of federal operations at Vormetric, has said the federal government should develop a cybersecurity strategy that focuses on the adoption of encryption and access controls for privileged users in order to safeguard critical data from cyber attacks. Lewandowski wrote in a Federal News Radio commentary published Wednesday …

Read More »

Nextgov: Federal Agencies Cite June 2015 ‘Cyber Sprint’ for Noncompetitive IT Contracts

Some federal agencies have cited a 30-day “cybersecurity sprint” launched in June 2015 to justify noncompetitive information technology contracts they have awarded, Nextgov reported Wednesday. Aliya Sternstein writes the Office of Management and Budget introduced the cyber exercise in order for agencies to address software vulnerabilities, adopt two-factor authentication and …

Read More »

HHS Issues Document to Identify Overlap Between NIST Cyber Framework, HIPAA Security Rule

The Department of Health and Human Services’ office of civil rights has released a crosswalk document in an effort to help healthcare organizations understand the overlap between the Health Insurance Portability and Privacy Act Security Rule and the National Institute of Standards and Technology’s Cybersecurity Framework. OCR developed the document …

Read More »

Clifton Triplett: OPM Faces Cyber Threat from Islamic State Group

Clifton Triplett, senior information technology and cybersecurity adviser at the Office of Personnel Management, has said the Islamic State militant group may potentially orchestrate a cyber attack on OPM’s computer networks, Nextgov reported Monday. Aliya Sternstein writes Triplett said at a Bloomberg Government-hosted webcast that the implementation of access controls could …

Read More »

GAO: Complete Guidance Needed for Consistent Agency Security Performance

The Government Accountability Office found that many federal agencies continue to have what auditors believe are weaknesses in several security aspects that affect the implementation of information security programs. GAO said in a report published Tuesday that 24 agencies identified vulnerabilities in the areas of access control, configuration management, segregation of duties, …

Read More »

NIST NCCoE Seeks Comments on Identity & Access Mgmt Guide for Energy Sector

The National Institute of Standards and Technology‘s National Cybersecurity Center of Excellence has opened the comment period for a draft guide on access control measures for energy companies to reduce cyber risk. NIST said Tuesday the “Identity and Access Management for Electric Utilities” guide is based on NCCoE’s discussions with the energy sector on …

Read More »